It is likely that the data is not from the recent eBay data breach but possibly from another source.

The hacker provided a 3,000-row extract from a database with
Asian-Pacific user names, addresses, phone numbers and their DOB. This
equals to about 145 million users.

The users are shown in the sample would represent an odd subset of users for an international company like eBay.

Even if the sample is not from the eBay breach, it could potentially be data from another major company’s leak.

Or it could be fake, and just another cyber-criminal trading for bitcoin on the blackmarket.

Did you receive a notice?

Many reports from worried eBay users says eBay has not yet sent them
an email about the issue. There is no notification when you go to
eBay.com or any kind of warning about the breach.

There was a notification after the user tries to reset their password which urges users to create a new one.

It is common for websites to put a banner or notification on their
site after a breach. Notifications urging their users to change
passwords, even when the theft is only of encrypted (and properly salted
and hashed) passwords.

The reason why eBay hasn’t done the same, is a mystery…

Beef up the password

If you haven’t already done so, create a strong, unique password for your account.
Make sure you can remember it but nobody else will be able to guess it.

De-link PayPal

Since eBay owns PayPal, they suggest users to link their PayPal account to their eBay account.

Since the breach, if you have followed their suggestion, you may want to rethink your choice.

If you un-link PayPal from eBay account, you can still pay with your PayPal account at any time.

Linked accounts provide cyber-criminals with an easy way to gather a variety of data.

Anytime a step is removed from the process of logging in as a user,
you remove a step of security against criminals gaining access to your
information.

It took eBay two months to discover the hack because there was no
sign of “unusual activity” detected. eBay has not confirmed if the data
stolen was private information or not.

Security experts have criticized the company for not encrypting all private customer information obtained.
eBay is aggressively investigating the intrusion with police
enforcement but has no evidence that user accounts have been tampered
with.

What do you think about this data breach? Please leave your comments below, we would love to hear from you!